Jesse Burns

Topic: Exploratory Android Surgery

Language: English

Bio:
Jesse Burns is a Partner at iSEC Partners and performs security reviews. These reviews recently included work on Android for both Google and other companies building new Android devices. Prior to founding iSEC Partners in 2004, Jesse worked in a variety of software security roles, including as a managing security architect for @Stake, and as a developer of security and directory management tools on Windows and Unix systems. He has previously spoken on topics like fuzzing Windows IPC mechanisms, Windows Vista security, and the weaknesses of NTLM.

Abstract:
Jesse discusses Google’s new Android OS, demonstrating ways to analyze security and software changes in custom distributions of the platform. The presentation starts with an overview of the Android security model, and then shows tools and techniques for seeing what is actually installed on devices as opposed to what is offered in the standard open source version of Android. The talk concludes with discussions of common Android security weaknesses. Attendees would ideally be familiar with basic Android and OS concepts, experience reading Java source code would make some examples easier to follow.